feat(auth): add retention and recovery doctor

lib/codex-manager.ts

@@ -32,6 +32,7 @@ import {
 	getCodexCliConfigPath,
 	loadCodexCliState,
 } from "./codex-cli/state.js";
+import { getLatestCodexCliSyncRollbackPlan } from "./codex-cli/sync.js";
 import { setCodexCliActiveSelection } from "./codex-cli/writer.js";
 import {
 	applyUiThemeFromDashboardSettings,
@@ -80,6 +81,7 @@ import {
 	getActionableNamedBackupRestores,
 	getNamedBackupsDirectoryPath,
 	getStoragePath,
+	listAccountSnapshots,
 	listNamedBackups,
 	listRotatingBackups,
 	loadAccounts,
@@ -3574,6 +3576,7 @@ async function runDoctor(args: string[]): Promise<number> {
 
 	setStoragePath(null);
 	const storagePath = getStoragePath();
+	const walPath = `${storagePath}.wal`;
 	const checks: DoctorCheck[] = [];
 	const addCheck = (check: DoctorCheck): void => {
 		checks.push(check);
@@ -3608,6 +3611,79 @@ async function runDoctor(args: string[]): Promise<number> {
 		}
 	}
 
+	addCheck({
+		key: "storage-journal",
+		severity: existsSync(walPath) ? "ok" : "warn",
+		message: existsSync(walPath)
+			? "Write-ahead journal found"
+			: "Write-ahead journal missing; recovery will rely on backups",
+		details: walPath,
+	});
+
+	const rotatingBackups = await listRotatingBackups();
+	const validRotatingBackups = rotatingBackups.filter((backup) => backup.valid);
+	const invalidRotatingBackups = rotatingBackups.filter(
+		(backup) => !backup.valid,
+	);
+	addCheck({
+		key: "rotating-backups",
+		severity:
+			validRotatingBackups.length > 0
+				? "ok"
+				: rotatingBackups.length > 0
+					? "error"
+					: "warn",
+		message:
+			validRotatingBackups.length > 0
+				? `${validRotatingBackups.length} rotating backup(s) available`
+				: rotatingBackups.length > 0
+					? "Rotating backups are unreadable"
+					: "No rotating backups found yet",
+		details:
+			invalidRotatingBackups.length > 0
+				? `${invalidRotatingBackups.length} invalid backup(s); recreate by saving accounts`
+				: dirname(storagePath),
+	});
+
+	const snapshotBackups = await listAccountSnapshots();
+	const validSnapshots = snapshotBackups.filter((snapshot) => snapshot.valid);
+	const invalidSnapshots = snapshotBackups.filter(
+		(snapshot) => !snapshot.valid,
+	);
+	addCheck({
+		key: "snapshot-backups",
+		severity:
+			validSnapshots.length > 0
+				? "ok"
+				: snapshotBackups.length > 0
+					? "error"
+					: "warn",
+		message:
+			validSnapshots.length > 0
+				? `${validSnapshots.length} recovery snapshot(s) available`
+				: snapshotBackups.length > 0
+					? "Snapshot backups are unreadable"
+					: "No recovery snapshots found",
+		details:
+			invalidSnapshots.length > 0
+				? `${invalidSnapshots.length} invalid snapshot(s); create a fresh snapshot before destructive actions`
+				: getNamedBackupsDirectoryPath(),
+	});
+
+	const hasAnyRecoveryArtifact =
+		existsSync(storagePath) ||
+		existsSync(walPath) ||
+		validRotatingBackups.length > 0 ||
+		validSnapshots.length > 0;
+	addCheck({
+		key: "recovery-chain",
+		severity: hasAnyRecoveryArtifact ? "ok" : "warn",
+		message: hasAnyRecoveryArtifact
+			? "Recovery artifacts present"
+			: "No recovery artifacts found; create a snapshot or backup before destructive actions",
+		details: `storage=${existsSync(storagePath)}, wal=${existsSync(walPath)}, rotating=${validRotatingBackups.length}, snapshots=${validSnapshots.length}`,
+	});
+
 	const codexAuthPath = getCodexCliAuthPath();
 	const codexConfigPath = getCodexCliConfigPath();
 	let codexAuthEmail: string | undefined;
@@ -3720,8 +3796,80 @@ async function runDoctor(args: string[]): Promise<number> {
 		details: codexCliState?.path,
 	});
 
+	const rollbackPlan = await getLatestCodexCliSyncRollbackPlan();
+	const rollbackReason = (rollbackPlan.reason ?? "").trim();
+	const rollbackSnapshotPath = rollbackPlan.snapshot?.path;
+	const rollbackSnapshotName = rollbackPlan.snapshot?.name;
+	const rollbackReasonLower = rollbackReason.toLowerCase();
+	if (rollbackPlan.status === "ready") {
+		const count =
+			rollbackPlan.accountCount ?? rollbackPlan.storage?.accounts.length;
+		addCheck({
+			key: "codex-cli-rollback-checkpoint",
+			severity: "ok",
+			message: `Latest manual Codex CLI rollback checkpoint ready (${count ?? "?"} account${count === 1 ? "" : "s"})`,
+			details: rollbackSnapshotPath,
+		});
+	} else if (rollbackPlan.snapshot) {
+		const isMissing =
+			rollbackReasonLower.includes("missing") ||
+			rollbackReasonLower.includes("not found") ||
+			rollbackReasonLower.includes("enoent");
+		const key = isMissing
+			? "codex-cli-rollback-checkpoint-missing"
+			: "codex-cli-rollback-checkpoint-invalid";
+		const recoveryAction = isMissing
+			? "Action: Recreate the rollback checkpoint by running a manual Codex CLI sync with storage backups enabled."
+			: "Action: Recreate the rollback checkpoint with a fresh manual Codex CLI sync before attempting rollback.";
+		const detailParts = [
+			rollbackSnapshotPath ?? rollbackSnapshotName,
+			rollbackReason || undefined,
+			recoveryAction,
+		].filter(Boolean);
+		addCheck({
+			key,
+			severity: "error",
+			message: isMissing
+				? "Latest manual Codex CLI rollback checkpoint is missing; rollback is blocked."
+				: "Latest manual Codex CLI rollback checkpoint cannot be restored.",
+			details: detailParts.join(" | ") || undefined,
+		});
+	} else {
+		addCheck({
+			key: "codex-cli-rollback-checkpoint",
+			severity: "warn",
+			message: "No manual Codex CLI rollback checkpoint has been recorded yet",
+			details:
+				"Action: Run a manual Codex CLI sync with backups enabled to capture a rollback checkpoint before applying changes.",
+		});
+	}
+
 	const storage = await loadAccounts();
 	let fixChanged = false;
+
+	const actionableNamedBackupRestores = await getActionableNamedBackupRestores({
+		currentStorage: storage,
+	});
+	const actionableCount = actionableNamedBackupRestores.assessments.length;
+	const backupRecoveryAction =
+		actionableCount > 0
+			? undefined
+			: `Action: Add or copy a named backup into ${getNamedBackupsDirectoryPath()} before attempting recovery.`;
+	addCheck({
+		key: "named-backup-restores",
+		severity: actionableCount > 0 ? "ok" : "warn",
+		message:
+			actionableCount > 0
+				? `Found ${actionableCount} actionable named backup restore${actionableCount === 1 ? "" : "s"}`
+				: "No actionable named backup restores available",
+		details: [
+			`total backups: ${actionableNamedBackupRestores.totalBackups}`,
+			backupRecoveryAction,
+		]
+			.filter(Boolean)
+			.join(" | "),
+	});
+
 	let fixActions: DoctorFixAction[] = [];
 	if (options.fix && storage && storage.accounts.length > 0) {
 		const fixed = applyDoctorFixes(storage);